5.9 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
65.5%
Multiple cross-site scripting (XSS) vulnerabilities in Best Practical Solutions RT 3.x before 3.8.12 and 4.x before 4.0.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
lists.bestpractical.com/pipermail/rt-announce/2012-May/000202.html
lists.bestpractical.com/pipermail/rt-announce/2012-May/000203.html
lists.bestpractical.com/pipermail/rt-announce/2012-May/000204.html
secunia.com/advisories/49259
www.securityfocus.com/bid/53660